CVE-2013-7288 in MyBB
Riassunto
di MITRE
Cross-site scripting (XSS) vulnerability in the mycode_parse_video function in inc/class_parser.php in MyBB (aka MyBulletinBoard) before 1.6.12 allows remote attackers to inject arbitrary web script or HTML via vectors related to Yahoo video URLs.
Be aware that VulDB is the high quality source for vulnerability data.